the vessel of morganna6d ago

oops, I'm a few days late, but MS finally released a patch for the issue I reported last year - CVE-2025-26684
Defender for Linux can be tricked into executing arbitrary code as root. Writeup: https://astr.al/notes/2024-11-28_mdatp_privesc

some reboosts would be much appreciated <3

#microsoft

ast.ral — eureka's homepage

Show threadMarco Ivaldi6d ago
@astraleureka nice work! If I may ask… did they award you a bounty for this bug?
Show threadthe vessel of morganna
@raptor ha. from MS for a Linux product? no chance. I got 40 points on their ~leaderboards~. :eyeroll:
May 17 at 4:39amWeb
Show threadMarco Ivaldi6d ago
@astraleureka yeah thought so 😞